SailPoint, Inc has finalized its acquisition of Tel Aviv-based Entro Security, a trailblazer in non-human identity (NHI) and secrets protection. Moving forward, Entro’s specialized capabilities are immediately available to SailPoint clients as standalone offerings, ensuring deep, real-time protection across hybrid and cloud ecosystems while deep engineering teams execute native platform integration.
The strategic acquisition answers a massive, industry-wide shift: as enterprises rapidly scale autonomous AI agents, machine identities, and automated cloud workflows, the population of non-human identities has dramatically outpaced human accounts. This explosion has introduced a massive, highly vulnerable digital attack surface. By uniting Entro’s granular access controls with the newly debuted SailPoint Agentic Fabric, the unified company delivers a comprehensive identity perimeter that bridges overarching human accountability with the technical defense required to handle machine-to-machine assets.
Mark McClain, CEO and Founder of SailPoint commented:
“Organizations are desperate for a way to manage the risk of the autonomous AI workforce. By officially bringing Entro into the SailPoint platform today, we are closing the AI governance gap. We aren’t just giving organizations another telemetry dashboard; we are delivering a real-time, unified control plane to govern, secure, and manage the lifecycle of every single identity—human, machine, or AI agent-across their global digital footprint.”
Also Read: Persistent Systems to Acquire Nagarro for AI and Digital Engineering
As part of the definitive agreement, Entro’s co-founders, Itzik Alvas and Adam Cheriki, will transition into SailPoint’s core technology organization. They will oversee the ongoing innovation of adaptive identity architectures and guide the native code integration of Entro’s technology into the centralized SailPoint Platform.
Itzik Alvas, Co-Founder and CEO of Entro said:
“Entro’s capabilities together with SailPoint Agentic Fabric is a game-changer that immediately solves a massive operational pain point for security teams. Starting today, Entro’s solutions are available for SailPoint customers to instantly shine a light on their unmanaged machine credentials and AI agents. We are giving organizations what they have desperately needed: a single, comprehensive command center that actively governs human, machine, and agentic identities together, stopping credential abuse and posture drift in their tracks.”
Redefining Identity Management for the Agentic Era
The integration of Entro significantly accelerates the capabilities of the SailPoint Agentic Fabric across three distinct pillars:
Discovery Without Match and Hidden Secrets: Whereas the SailPoint Agentic Fabric manages human responsibility and organizational succession as well as general compliance in business applications, Entro gets right into the developer ecosystem. The system automatically discovers more than 1,200 secret types of various secrets, API keys, tokens, and certificates hidden in CI/CD pipelines, container registries, and live code. This lets the security teams map AI agents according to the resources that they have access to.
Correlating Identity Context with Asset Lineage: The combined architecture integrates two complex data-mapping layers. The SailPoint Agentic Fabric constructs an end-to-end identity graph detailing the relationships between human personnel, entitlements, machines, and software entities. Concurrently, Entro injects a highly granular lineage map indexed directly to secret and credential utilization. This dual layer enables security operators to trace exactly which application, script, or autonomous agent is calling a specific secret at any given microsecond.
Shift From Compliance Governance to Threat Response at Runtime: In addition to performing conventional compliance routines, such as access certifications, separation of duties (SoD), and lifecycle management, the system is now capable of performing runtime protection for your environment. The Entro NHIDR engine is being used to continuously monitor the behavior of tokens to identify any anomalies, block the use of malicious or unauthorized AI tools, and provide prompt security responses. The system has built-in small language models (SLMs) to offer automated security threat mitigation suggestions to security operation teams.